services/userspace
1
0
Fork 0
Code Issues 1 Pull Requests Projects Releases Wiki Activity

createuserspace

Browse Source
This commit is contained in:
ducoterra
2021-01-25 19:27:48 -05:00
parent 72dd40629f
commit d5a98dcfcd
3 changed files with 7 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
README.md
View File

@@ -4,21 +4,11 @@
### Quickstart
```bash
kubectl -n kube-system create secret generic certsigner --from-file /var/lib/rancher/k3s/server/tls/client-ca.crt --from-file /var/lib/rancher/k3s/server/tls/client-ca.key
kubectl apply -f cluster
kubectl apply -f certsigner
./adduser.sh tester
./userspace.sh tester
```
1. Start Docker
2. Run createuserspace.sh
```bash
export USER=$1
openssl req -in $HOME/.kube/users/$USER/$USER.csr -noout -text
helm template $USER ./namespace | kubectl --context admin apply -f -
kubectl --context admin cp $HOME/.kube/users/$USER/$USER.csr certsigner:/certs/$USER.csr
kubectl --context admin exec --context admin certsigner -- openssl x509 -in /certs/$USER.csr -req -CA /keys/client-ca.crt -CAkey /keys/client-ca.key -set_serial $(python -c "import random; print(random.randint(1000000000, 9999999999))") -out /certs/$USER.crt -days 5000
kubectl --context admin cp certsigner:/certs/$USER.crt $HOME/.kube/users/$USER/$USER.crt
./createuserspace.sh <username> <server_fqdn>
```
### Update a user